Описание
The lesson module in Moodle through 2.6.11, 2.7.x before 2.7.10, 2.8.x before 2.8.8, and 2.9.x before 2.9.2 allows remote authenticated users to bypass intended access restrictions and enter additional answer attempts by leveraging the student role.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Одно из
EPSS
5.4 Medium
CVSS3
5.5 Medium
CVSS2
Дефекты
Связанные уязвимости
The lesson module in Moodle through 2.6.11, 2.7.x before 2.7.10, 2.8.x before 2.8.8, and 2.9.x before 2.9.2 allows remote authenticated users to bypass intended access restrictions and enter additional answer attempts by leveraging the student role.
The lesson module in Moodle through 2.6.11, 2.7.x before 2.7.10, 2.8.x ...
Moodle allows attackers to enter additional answer attempts
Уязвимость системы управления обучением Мoodle, позволяющая нарушителю обойти существующие ограничения доступа
EPSS
5.4 Medium
CVSS3
5.5 Medium
CVSS2